Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/WFoSqC14BpVH5Cb6k1CJ43Kw9To.roa
File: WFoSqC14BpVH5Cb6k1CJ43Kw9To.roa (raw, json)
Hash identifier: JnRiMfd9nwg8jtq238kZzEHpNqXF/fwnpcdjfaQN5R0=
Subject key identifier: 58:5A:12:A8:2D:78:06:95:47:E4:26:FA:93:50:89:E3:72:B0:F5:3A
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 019CAD61651DFABDB0C632E966602270BBA6
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/WFoSqC14BpVH5Cb6k1CJ43Kw9To.roa
Signing time: Mon 02 Mar 2026 07:09:27 +0000
ROA not before: Mon 02 Mar 2026 07:09:27 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 60849
IP address blocks: 62.72.165.0/24 maxlen: 24
62.72.167.0/24 maxlen: 24
62.72.179.0/24 maxlen: 24
62.72.186.0/24 maxlen: 24
176.57.51.0/24 maxlen: 24
176.57.52.0/24 maxlen: 24
176.57.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.mft
rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:61:65:1d:fa:bd:b0:c6:32:e9:66:60:22:70:bb:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Mar 2 07:09:27 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=585a12a82d78069547e426fa935089e372b0f53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f7:2d:fa:1f:32:c6:c7:45:03:b9:f2:2d:3a:
b2:16:f0:58:35:0c:77:64:96:93:d5:c1:de:db:31:
f2:8c:80:89:0d:ef:94:f2:b0:07:dc:e1:8c:f6:49:
dd:b6:41:4e:ff:f5:16:27:25:2f:31:63:d6:f7:9d:
5a:d6:65:aa:4c:16:f0:a0:d5:49:13:5b:16:5a:e4:
ef:4c:d8:c2:5f:eb:fd:34:5f:86:b1:d4:d4:4d:0e:
4f:9d:e1:9c:dc:8b:90:65:ee:7d:10:af:50:e2:87:
e0:6f:59:32:25:06:7e:31:aa:6f:0e:11:68:7b:38:
9f:57:a7:f1:97:46:51:64:c8:f3:ae:2b:97:b8:23:
55:1e:29:6d:94:d3:bd:ca:c4:cd:15:94:90:7c:08:
8a:10:73:34:d4:8f:d2:2e:a6:6c:ef:c6:4d:42:7c:
2b:31:1a:7c:60:c9:45:6c:2f:b5:81:f4:df:d4:11:
8c:6a:f4:e6:d3:da:1d:2e:8b:ad:71:d9:86:bf:58:
44:1d:79:71:ff:f4:72:e1:de:d1:b8:f7:b2:f7:fe:
e4:30:f6:70:95:35:ee:9c:78:ad:7f:ad:26:2a:f0:
7e:8d:fc:52:65:5e:8b:c7:55:95:66:1e:70:81:4c:
1d:4b:f1:e1:ee:ef:24:9a:e7:83:68:4a:d4:e1:2b:
56:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5A:12:A8:2D:78:06:95:47:E4:26:FA:93:50:89:E3:72:B0:F5:3A
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/WFoSqC14BpVH5Cb6k1CJ43Kw9To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.72.165.0/24
62.72.167.0/24
62.72.179.0/24
62.72.186.0/24
176.57.51.0-176.57.53.255
Signature Algorithm: sha256WithRSAEncryption
4f:67:4f:11:50:b5:67:91:14:ab:06:37:f5:33:38:5d:d0:cd:
aa:4f:75:33:0b:16:ea:0b:55:05:f7:25:f7:32:7d:70:38:07:
aa:d3:66:57:ad:de:78:e7:76:e8:29:8a:f3:01:6d:7a:17:55:
d6:c6:95:ef:e7:a4:5f:88:86:ae:81:85:f0:f7:92:68:35:e0:
94:df:0d:f7:c5:9c:a8:71:7b:14:e8:b7:a6:90:4c:56:b8:5e:
c8:3c:6e:a2:f7:0f:ae:c8:bb:28:1b:15:30:51:3c:65:4b:98:
74:f8:d5:c9:82:25:01:9b:2f:c9:b7:83:1d:92:1a:46:04:d3:
69:3c:ae:5a:7b:d9:33:86:8e:72:04:be:07:da:5d:8c:72:0a:
63:20:5d:40:9a:d2:57:6c:8f:b8:71:dc:ef:62:dd:de:a9:c6:
5d:ed:86:78:01:c4:c0:72:c5:7e:20:87:b9:1e:4b:4a:2f:df:
15:4d:75:76:49:b7:d2:38:f7:fd:17:67:db:3e:0a:07:3d:a0:
fb:75:eb:49:59:3f:4e:e5:98:b8:e0:83:02:fa:81:8b:8a:c6:
ec:25:3a:c0:26:7e:77:a2:1e:14:1e:74:cd:d0:97:a9:df:eb:
43:4c:45:99:d7:8a:fa:d9:97:70:53:c3:e0:ea:6f:ba:b8:ac:
24:9b:5e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 22:43:09 2026 by rpki-client